Today, I'd like to share the steps to configure IPSec Site to Site VPN Tunnel with IKEv2 Mode between SonicWalls
Please proceed below steps in Local and Remote site SonicWall Firewall to get your VPN Tunnel
- Create Firewall Address Object and Assign them to the correct Zone Assignment
- By default, VPN setting in SonicWall is disable. So, do not forget to Enable it.
- Add VPN Policy with below details in correct.
၁။ Policy Type က Site to Site
1> Policy Type must be Site to Site
2> Authentication Method have to be IKE using Preshared Secret
3> Assign VPN name for ease of understanding.
4> IPSec Primary Gateway Name or Address must be the WAN IP Address of Remote Site Firewall
5> Key in complex and secure Shared Secret
6> Put correct Local and Peer (Remote) WAN IP Addresses as IKE ID for IKEv2 Mode in your two Firewalls
7> Local and Destination (Remote) Network Subnet should be correct in your Network Section of VPN Policy
8> Ensure Phase 1 and Phase 2 Proposal Settings are correct
9> Do not forget to Enable Keep Alive setting
10> By default, VPN Access rule are automatically added in your SonicWall once you've created VPN Policy. But create Manually if you didn't see it in your Access Rules.
Well...Your IPSec Site to Site VPN Tunnels should up and running in Monitoring Session as Active if you are configure correctly above configuration on both SonicWall Firewalls.
I've attached configuration screen-shots of Local Site Firewall for your reference.
I believe this post will useful for who start to touch SonicWall Firewall.
(Be knowledgeable, pass it on then)